Instructional Design

Learning & Development

Higher Ed

K-12

Sales

Customer Success

Product Development

Software Engineering

Academic Advising

Marketing

Fully Remote

Tutoring

Information Technology

All Jobs

Companies

Schools

Former Teachers

$100K+

Entry Level
About Post a job
Existing employer? Sign in
edtech.com
Handshake logo

Handshake

Senior Security Engineer

🇺🇸 San Francisco, CA 🕑 Full-Time 💰 TBD 💻 Cybersecurity 🗓️ April 29th, 2026
SaaS Python Node.js

Edtech.com's Summary

Handshake is hiring a Senior Security Engineer to lead the design and implementation of their enterprise identity automation and governance ecosystem. This role involves defining IAM automation strategy, building scalable identity lifecycle workflows, and collaborating with multiple teams to deliver secure, automated, and auditable identity solutions across SaaS, cloud, and internal platforms.

Highlights
  • Architect and manage automated onboarding, offboarding, and access-change workflows using Okta, Workday, SCIM, and event-driven systems.
  • Develop integration layers between identity platforms and internal applications with Python, REST APIs, Webhooks, and Terraform.
  • Implement error handling, telemetry, monitoring, and reconciliation for reliable identity lifecycle operations.
  • Own Handshake's IAM ecosystem technologies including Okta, Google Workspace, GCP, AWS IAM, and internal access systems.
  • Engineer authentication and authorization protocols such as OIDC, OAuth2, SAML, JWT, and design scalable RBAC/ABAC models.
  • Experience required: 4–7+ years in IAM engineering or identity governance with strong skills in Python, Node.js, REST integrations, and Terraform.
  • Deep understanding of identity protocols, token flows, SCIM, and secure engineering and DevOps principles.
  • Preferred qualifications include certifications like Okta Architect, Azure Identity Engineer, CISSP, and experience with Okta Workflows, SailPoint, or PAM.
  • Serves as service owner for IAM automation platforms with responsibility for uptime, consistency, and continuous improvement.
  • Compensation includes equity, 401(k) match, competitive salary, and comprehensive benefits such as medical, dental, vision, parental leave, wellness stipend, and flexible PTO.

Senior Security Engineer Full Description

About Handshake

Handshake is the career network for the AI economy. 20 million knowledge workers, 1,600 educational institutions, 1 million employers (including 100% of the Fortune 50), and every foundational AI lab trust Handshake to power career discovery, hiring, and upskilling, from freelance AI training gigs to first internships to full-time careers and beyond. This unique value is leading to unparalleled growth; in 2025, we tripled our ARR at scale.

Why join Handshake now:

  • Shape how every career evolves in the AI economy, at global scale, with impact your friends, family and peers can see and feel

  • Work hand-in-hand with world-class AI labs, Fortune 500 partners and the world’s top educational institutions

  • Join a team with leadership from Scale AI, Meta, xAI, Notion, Coinbase, and Palantir, among others

  • Build a massive, fast-growing business with billions in revenue

About the Role

Handshake is seeking a Senior Security Engineer to own the architecture, design, and implementation of our enterprise identity automation and governance ecosystem. You’ll define the long-term IAM automation strategy, build resilient and scalable lifecycle workflows, and enable secure-by-default identity operations across SaaS, cloud, and internal platforms.
You’ll partner closely with Security, IT Engineering, People Operations, and Product/Platform Engineering to deliver highly automated, auditable, and reliable identity solutions.

In this role, you will:

  • Architect, build, and own automated onboarding, offboarding, and access-change workflows across Okta, Workday, SCIM, and event-driven systems.

  • Engineer integration layers between identity platforms and internal applications using Python, REST APIs, Webhooks, and Terraform.

  • Implement error-handling, reconciliation logic, telemetry, and monitoring to ensure reliability and determinism in identity lifecycle events.

  • Modernize existing provisioning logic and replace manual processes with scalable automation frameworks.

  • Develop tooling and pipelines enabling version-controlled, testable, observable IAM automation.

  • Act as a technical owner for Handshake’s IAM ecosystem, including Okta, Google Workspace, GCP, AWS IAM, and internal access systems.

  • Engineer and optimize authentication & authorization protocols (OIDC, OAuth2, SAML, JWT), fine-grained access policies, and scalable RBAC/ABAC models.

  • Build custom automation using Okta Workflows or API-driven orchestration.

  • Design SOC2-compliant access controls, approvals, attestations, and auditability mechanisms.

  • Build automated access certification systems with full data lineage.

  • Conduct identity-related incident forensics and implement preventative automation.

  • Provide cross-functional leadership, setting standards, best practices, and reference architectures for identity automation.

  • Serve as service owner for IAM automation platforms with accountability for uptime, consistency, and continuous improvement.

Desired Capabilities

  • 4–7+ years of hands-on IAM engineering, identity automation, or identity governance experience.

  • Strong scripting/automation skills in Python, Node.js, and REST-based integrations.

  • Experience with IAM platforms such as Okta, Google Workspace/GCP, Azure AD, or similar.

  • Deep understanding of identity protocols, token flows, SCIM, and distributed lifecycle orchestration.

  • Experience with Terraform or other infrastructure-as-code frameworks.

  • Ability to diagnose complex identity issues across SaaS, cloud, and distributed systems.

  • Strong understanding of DevOps practices, observability, and secure engineering principles.

  • Demonstrated ownership mindset across architecture, implementation, monitoring, and iterative improvement.

Extra Credit

  • Advanced experience with GCP IAM, Google Workspace IAM, AWS IAM, cross-account access patterns, and policy automation.

  • Experience with Okta Workflows, SailPoint/IGA, or Privileged Access Management (PAM) solutions.

  • Experience designing scalable authorization models for high-growth or distributed organizations.

  • Certifications such as Okta Architect, Azure Identity Engineer, CISSP.

  • Prior experience in SaaS, high-growth, or distributed engineering environments.

Perks

Handshake delivers benefits that help you feel supported—and thrive at work and in life.
The below benefits are for full-time US employees.

🎯 Ownership: Equity in a fast-growing company
💰 Financial Wellness: 401(k) match, competitive compensation, financial coaching
🍼 Family Support: Paid parental leave, fertility benefits, parental coaching
💝 Wellbeing: Medical, dental, and vision, mental health support, wellness stipend
📚 Growth: Learning stipend, ongoing development
💻 Remote & Office: Internet, commuting, and free lunch/gym in our SF office
🏝 Time Off: Flexible PTO, 15 holidays + 2 flex days
🤝 Connection: Team outings & referral bonuses

Explore our mission, values, and comprehensive US benefits at joinhandshake.com/careers.

Similar Jobs

Director & Chief Information Security Officer

Loyola University Chicago

🇺🇸 Hybrid - Chicago, IL

Cyber Security Systems Engineer

Pennsylvania State University

🇺🇸 Reston, VA

Advance Associate, Information Security(Fraud)

Pearson

🇮🇳 Hybrid - IN

Senior Engineer (Sr. Data Security Analyst)

College Board

🇺🇸 Remote - US

Federated Security Engineer - OIT

Emory University

🇺🇸 Hybrid - Atlanta, GA